ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Alibabacloud Odps Quota Manage

v0.0.2

MaxCompute Quota Management Skill. Use for managing MaxCompute/ODPS quota resources including pay-as-you-go quota creation, query, and listing operations. Tr...

0· 43·0 current·0 all-time
byalibabacloud-skills-team@sdk-team
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
The skill clearly needs Alibaba Cloud credentials (ALIBABA_CLOUD_ACCESS_KEY_ID and ALIBABA_CLOUD_ACCESS_KEY_SECRET) to call the aliyun CLI/SDK, and the SKILL.md declares these as required. However the registry metadata lists no required environment variables or primary credential — this is an inconsistency between what the skill says it needs at runtime and what the package metadata advertises.
Instruction Scope
The SKILL.md instructions are narrowly focused on quota operations and require using the official aliyun CLI and specific commands (list-quotas, query-quota, CreateQuota). The instructions do reference the user's ~/.aliyun/config.json indirectly (via aliyun configure) and require confirming all user inputs before execution — which is appropriate. Note: the skill instructs enabling 'aliyun configure set --auto-plugin-install true', which changes a global CLI setting; the skill also includes examples of non-interactive 'aliyun configure set' usage (including storing keys), so verify how the agent will be given credentials.
Install Mechanism
This is an instruction-only skill (no install spec, no code files). The CLI installation guidance points to official Alibaba download hosts (aliyuncli.alicdn.com) and Homebrew, both expected for this tool. No arbitrary third-party download URLs or extracted archives from untrusted hosts are present.
!
Credentials
Requesting AK/SK is proportional to the stated purpose (calling Alibaba Cloud APIs). The concern is that the skill metadata does not declare these required environment variables while the SKILL.md does — that mismatch can lead to accidental deployment without providing the necessary credentials or to unclear handling of secrets. Also the skill recommends CLI configuration (which may write credentials to ~/.aliyun/config.json) so confirm whether the agent will use environment variables, an ephemeral STS token, or write persistent credentials to disk. Prefer least-privilege RAM user credentials or temporary STS tokens.
Persistence & Privilege
The skill does not request always:true nor any elevated platform privileges. It does however instruct the operator to enable auto-plugin-install for the aliyun CLI (a global CLI setting) and describes non-interactive configuration methods that will persist credentials in ~/.aliyun/config.json. Those are reasonable for automation but are system-level changes the user should consent to and scope appropriately (use limited RAM user, restrict file permissions, or prefer environment/STS tokens).
What to consider before installing
This skill appears to do what it says: manage MaxCompute (ODPS) quotas via the official aliyun CLI. However, before installing or enabling it you should: 1) Note the metadata mismatch — SKILL.md requires ALIBABA_CLOUD_ACCESS_KEY_ID and ALIBABA_CLOUD_ACCESS_KEY_SECRET but the registry metadata lists none; confirm how credentials will be provided to the agent. 2) Use least-privilege credentials (create a RAM user with only odps:CreateQuota/QueryQuota/ListQuotas as needed or use temporary STS tokens) and avoid using root keys. 3) Decide whether you accept the skill enabling 'auto-plugin-install' or modifying ~/.aliyun/config.json; run it first in a non-production account or isolated environment. 4) Ensure the agent will always confirm parameters before creating quotas (the skill claims this is mandatory). 5) Verify CLI downloads come from the official aliyun hosts shown in the docs. If the registry metadata is not updated to declare required env vars and credential handling clearly, treat that as a red flag and request the author fix the metadata before trusting the skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk974khztakkqjnvf5f4pw5edtx84267d

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments